Just exposed Immich via a remote and reverse proxy using Caddy and tailscale tunnel. I’m securing Immich using OAuth.

I don’t have very nerdy friends so not many people appreciate this.

  • valkyre09@lemmy.worldEnglish
    1·
    3 days ago

    I don’t even bother with the internal DNS server. I just set my A records in Cloudflare to point to the private IPs

    • lka1988@lemmy.dbzer0.comEnglish
      1·
      2 days ago

      Sounds like Cloudflare tunnels. I used that for a while, until I realized I didn’t want to be tied to Cloudflare.

    • lorentz@feddit.itEnglish
      2·
      3 days ago

      I tired the same, but my router wants to be smart by filtering DNS responses that points to local IP. I guess whoever designed it considered it a security feature. It is a stock router from the ISP, its configuration interface is minimal, borderline to non existent.

    • stetech@lemmy.worldEnglish
      0·
      3 days ago

      Do the private IPs not change at all? Or can you handle that automatically?

      I have next to no experience, but I’m pretty sure that wouldn’t work for me since my IP changes? Idk

      • WolfLink@sh.itjust.worksEnglish
        2·
        2 days ago

        Most routers have a feature to assign static IPs to a specific MAC address. You can also tell most devices to try to take a specific IP instead of using DHCP.

        There are multiple ways to set it up, but it’s very possible to set a specific device to always have the same local IP, which is usually the first step to many self-hosting scenarios.